Network

This section present some tools to analyse networks and network traffic. The Services and Ports section and the Pentest section can also be useful for network related tasks.

• Wireshark - Website The go-to tool for examining .pcap files.

• PCAPNG File format - GitHub Some tools do not support the PCAPNG file format. It can be converted to PCAP with this online tool or with the editcap command that comes with Wireshark.

  editcap old_file.pcapng new_file.pcap

• tcpflow - GitHub

  A command-line tool for reorganizing packets in a PCAP file and getting files out of them. Typically it gives no output, but it creates the files in your current directory!

  tcpflow -r my_file.pcap
  ls -1t | head -5 # see the last 5 recently modified files

• PcapXray - GitHub A GUI tool to visualize network traffic.